07/24/2087 15:04 6517351102 SHUMAKER & SIEFFERT PAGE 04/17 

RECEIVED 

CENTRAL FAX CENTER 
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Amendment dated July 24, 2007 
RespoTisive to Office Action mailed April 24, 2007 

AMENDMENTS TO THE CLAIMS 
This listing of claims will replace all prior versions and listings of claims in the application. 
Listing of Claims: 

Claim 1 (Currently Amended) A method comprising: 

upon bowcr-up of a computer retrieving boot code and a certificate from a peripheral 
device coupled to the computer, the certificate describing opetation of th e boot code for 
imtiaijsiaR the peripheral device,; 

ygsrifyin g- with the computer, security of a the boot code associated with a fljs peripheral 
device by pcrforaiing a security check on the boot code in accordance with fligJIa]] certificate 
that dogoribcs operation of th e boot code ; and 

executing the boot code with the computer to initialize the peripher al device based on a 
result of the security check. 

Claim 2 (Original) The method of claim 1 , wherein veriJEying the security of the boot code 
includes verifying the boot code via Efficient Code Certification that specifies a process for 
performing the security check on the boot code as indicated by the certificate, 

Claim 3 (Original) The method of claim 1, wherein the certificate further indicates a type of 
security check to perform. 

Claim 4 (Original) The method of claim 3, wherein the type of securily check comprises one 
of a security check to enforce type safety, a security check to enforce control flow safety, a 
security check to enforce memory safety, a security check to enforce stack safety, a security 
check to enforce device encapsulation and a security check to enforce prevention of specific 
fonns of harm. 

Ciaini 5 (Original) The method of claim I , wherein the boot code includes boot firmware. 
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Claim 6 (Original) The method of claim 5, wherein the boot firmware confonns to Open 
Firmware standard IEEE- 1275, 

Claim 7 (Original) The method of claim 1, wherein verifying the safety of the boot code 
occurs inline such that verifying the safety of the boot code occurs in real time prior to executing 
the boot code. 

Claim 8 (Original) The method of claim 1 , wherein the boot code includes boot code defining 
a device driver to initialize the peripheral device and define an application program interface for 
accessing and controlling the peripheral device. 

Claims 9 (Withdrawn) A method comprising: 

generating a boot code for a peripheral device from a program written in a high-level 

programming language; 

gathering information while generating the boot code; and 

generating a certificate from information gathered while generating the boot code, 

wherein the certificate describes operation of the boot code* 

Claim 10 (Withdrawn) The method of claim 9. wherein generating the boot code 
comprises: 

compiling the program written in the high-level programming language into a bytecode; 
translating the bytecode into a program written in a low-level programming language; and 
tokenizing the program written in the low-level language into the boot code. 

Claim 1 1 (Withdrawn) The method of claim 10, wherein gathering information while 
generating the boot code comprises gathering compilation infoiroation while compiling the 
program written in the high-level language into the bytecode. 
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Claim 12 (Withdrawn) The method of claim 1 U wherein the program written m the high- 
level language mcludes a call to a verification application program interface, which provides 
secure access to the peripheral device. 

Claim 1 3 (Withdrawn) The method of claim 10, wherein the low-level programming 
language includes Fotlli. 

Claim 14 (Withdrawn) Tlie method of claim % wherein the high-level programming 
language includes one of Java, C-H- and Visual Basic. 

Claim 1 5 (Withdrawn) The method of claim 9, wherein the boot code comprises boot 
firmware. 

Claim 1 6 (Withdrawn) The method of claim 1 5, wherein the boot firmware conforms to 
Open Firmware standard IEEE-1275. 

Claim 17 (Withdrawn) The method of claim 9, further comprising verifying security of the 
program written in the high-level programming language prior to generating the boot code, and 
wherein generating the boot code includes generating the boot code based on the result of 
verifying the security of the program written in the high-level programming language. 

Claim 18 (Currently Amended) A device comprising: 

an interface to retrieve boot code from a peripher al device upon power-up of the device; 

a memory module to store the boot code from the peripheral device; and 

a control unit to verify security of a the boot code associated with a the peripheral device 

by performing a security check on the boot code in accordance with a certificate that describes 

operation of the boot code^t^id 

g mcmorsT modulo whereby the control unit gonfigured to executeffsH the boot code to. 

initialize the peripheral device b ased on a result of the security check. 
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Clmm 1 9 (Original) The device of claim 1 8, wherein the control unit verifies the boot code 
using principles of Efficient Code Certification. 

Claim 20 (Original) The device of claitti 1 8, wherein the certificate further indicates a type of 
security check to perform. 

Claim 21 (Original) The device of claim 20, wherein the type of security check comprise one 
of a security checks to enforce type safety, a security check to enforce control flow safety, 
security checks to enforce memory safety, security checks to enforce stack safety, security checks 
to enforce device encapsulation and security checks to enforce prevention of specific forms of 
harm. 

Claim 22 (Original) The device of claim 1 8, wherein the boot code includes boot fiimware. 

Claim 23 (Original) The device of claim 22, wherein the boot firmware confomis to Open 
Firmware standard IEEE- 1 275 . 

Claim 24 (Original) The device of claim 1 8, wherein the control unit verifies the safety of the 
boot code in real time prior to executing the boot code. 

Claim 25 (Original) The device of claim 1 8, wherein the boot code defines a device driver to 
initialize the peripheral device and define an application program interface for accessing and 
controlling the peripheral device. 

Claim 26 (Withdrawn) A device comprising a control unit to generate a boot code for a 
peripheral device fi-om a program written in a high-level programming language and generate a 
certificate from information gathered while generating the boot code, wherein the certificate 
describes operation of the boot code. 
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CI win 27 (Withdrawn) The device of claim 26, wherein the control unit compiles the 
program written in the high-level programming language into a bytecode, translates the bytecode 
into a program written in a low-level programming language, and tokenizes the program written 
in a low-level language into the boot code. 

Claim 28 (Withdrawn) . The device of claim 27, wherein the control unit generates the 
certificate from compilation information gathered by the control unit while the control unit 
compiles the program written in the high-level language into the bytecode. 

Claim 29 (Withdrawn)The device of claim 27, wherein the low-level programming language 
includes Forth. 

Claim 30 (Withdrawn) The device of claim 26, wherein the high-level programming 
language includes one of Java, C-h- and Visual Basic. 

Claim 3 \ (Withdrawn) The device of claim 26, wherein the boot code comprises boot 
firmware. 

Claim 32 (Withdrawn) The device of claim 3 1 , wherein the boot firmware confonns to 
Open Firmware standard IEEE- 1 275 . 

Claim 33 (Withdrawn) The device of claim 26, wherein the program written in the high- 
level language includes a call to a verification appHcation program interface, which provides 
secure access to the peripheral device. 

Claim 34 (Withdrawn) The device of claim 26, wherein the control imit verifies security of 
the program written in the high-level programming language prior to gaierating the boot code 
and generates the boot code based on the result of the verification of the security of the program 
written in the high-level programming language. 
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Claim 35 (Currently Amended) A system comprising: 

a peripheral device having a memory module, wherein the memory module stores a boot 
code and a certificate; and 

a computer having an interface to retrieve the boot code and the certificate from th_e_ 
peripheral device, a second memory module and a control unit, \vherein the control unit uses the_ 
interface to retrieve r e triev es the boot code and the certificate from the peripheral device and 
executes a verification module that verifies security of the boot code by performing a security 
check on the boot code in accordance vs^ith a certificate that describes operation of die boot code, 
and 

wherein the control unit further executes the boot code based on a result of the security 

check. 

Claim 36 (Original) The system of claim 35, wherein the control unit verifies the boot code 
using principles of Efficient Code Certification- 
Claim 37 (Original) The system of claim 35, wherein the certificate further indicates a type of 
security check to perform. 

Claim 38 (Original) The system of claim 37, wherein the type of security check comprise one 
of a security check to enforce type safety, a security check to enforce control flow safety, a 
security check to enforce memory safety, a security check to enforce stack safety, a security 
check to enforce device encapsulation and a security check to enforce prevention of specific 
forms of harm. 

Claim 39 (Original) The system of claim 35, wherein the verification module verifies the safety 
of the boot code in real time prior to executing the boot code. 

Claim 40 (Original) Tlie system of claim 35, wherein the boot code defines a device driver to 
initialize the peripheral device and to define an application program interface for accessing and 
controlling the peripheral device* 
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Clain) 4 1 (Original) The system of claim 3 5, wherein the peripheral device comprises one of a 
graphic device, network controller and storage controller. 

Claim 42 (Withdrawn) A system comprising: 

a peripheral device having a memory module; and 

a control unit to generate a boot code from a program written in a high-level 
programming language, generate a certificate from information gathered while generating the 
boot code, and load the boot code and the certificate into the memoiy module, wherein the 
certificate describes operation of the boot code. 

Claim 43 (Withdrawn) The system of claim 42, wherein the control unit compiles the 
program written in the high-level programming language into a bytecode, translates the bytecode 
into a program written in a low-level programming language, and tokenizes the program written 
in a low-icvel language into the boot code. 

Claim 44 (Withdrawn) The system of claim 43, wherein the control imit gathers 
compilation information while the control unit compiles the program written in the high-level 
language into the bytecode. 

Claim 45 (Withdrawn) The system of claim 44, wherein the program written in the high- 
level language includes a call to a verification application program interface, wliich provides 
secure access to the peripheral device. 

Claim 46 (Withdrawn) The system of claim 42, wherein the control unit verifies security 
of the program written in the high-level programming language prior to generating the boot code 
and generates the boot code based on the result of the verification of the security of the program 
written in the high-level programming language. 
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Claim 47 (Currently Amended) A computer-readable mediuin comprising instructions for 

causing a programmable processor to: 

retrieve boot code from a peripheral device: 

store the boot code on a computer coupled to the peripheral device; 

verify security of a the boot code associated with a the peripheral device by performing a 

security check on the boot code in accordance with a certificate that describes operation of the 

boot code; and 

execute the boot code based on a result of the security check. 

Claim 48 (Original) The computer-readable medium of claim 47, wherein the instructions for 
causing the programmable processor to verijfy the security of the boot code includes instructions 
to verify the boot code using principles of Efficient Code Certification. 

Claim 49 (Original) The computer-readable medium of claim 47, wherein the certificate further 
indicates a type of security check to perform. 

Claim 50 (Original) The computer-readable medium of claim 49, wherein the type of security 
check comprise one of a security check to enforce one of type safety^ a security check to enforce 
control flow safety, a security check to enforce memory safety, a security check to enforce stack 
safely, a security check to enforce device encapsulation and a security check to enforce 
prevention of specific forms of harm. 

Claim 5 1 (Original) The computer-readable medium of claim 47, wherein the boot code 
includes boot firmware. 

Claim 52 (Original) Thecomputer-readablemedium of claim 51. wherein the boot firmware 
conforms to Open Firmware standard IEEE- 1 275. 
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Claim 53 (Original) The computer-readable medium of claim 47, v/herein instruction causing 
the programmable processor to verify the safety of the boot code includes instructions causing 
the programmable processor to verify the safety of the boot code in real time prior to executing 
the boot code. 

Claim. 54 (Original) The computer-readable medium of claim 47> wherein the boot code 
includes boot code defining a device driver to initialize the peripheral device and to define an 
application program interface for accessing and controlling the peripheral device. 

Claim 55 (Withdrawn) A computer-readable medium comprising instructions for causing 
a progranunable processor to; 

generate a boot code for a peripheral device ftom a program written in a high-level 
programming language; and 

generate a certificate that describes operation of the boot code firom information gathered 
while generating the boot code. 

Claim 56 (Withdrawn) The computer-readable medium of claim 55, wherein the 
instructions to generate the boot code comprises instructions to cause the programmable 
processor to: 

compile the program written in the high-level programming language into a bytecode; 
translate the bytecode into a program written iB a low-level progranuning language; and 
tokenize the program written in a low-Icvel language into the boot code. 

Claim 57 (Withdrawn) The computer-readable medium of claim 56, wherein information 
gathered while generating the boot code, further includes compilation information gathered while 
compiling the program written in the high-level language into the bytecode. 

Claim 58 (Withdrawn) The computer-readable medium of claim 56, wherein the high- 
level programming language includes Java, C-H- and Visual Basic. 
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Claim 59 (Withdrawn) The computer-readable medium of claim 56, wherein the low-level 
programming language includes Forth. 

Claim 60 (Withdrawn) The computer-readable medium of claim 55, wherein the boot code 
comprises boot fimiware. 

Claim 61 (Withdrawn) The computei-readable medium of claim 60, wherein the boot 
firmware conforms to Open Firmware standard lEEE-1275. 

Claim 62 (Witlidrawn) Tlie computer-readable medium of claim 55, wherein the program 
written in the high-level language includes a call to a verification application program interface, 
which provides secure access to the peripheral device. 

Claim 63 (Withdrawn) The computer-readable medium of claim 55, further comprising 
instruction to cause the programmable processor to verily security of the program written in the 
high-level programming language prior to generating the boot code and generating the boot code 
includes generating the boot code based on the result of verifying the security of the program 
written in the high-level programming language. 

Claim 64 (Withdrawn) A method comprising: 

generating a boot code in the fcode prograimning language for a peripheral device from a 
program written in the Java programming language; and 

generating a certificate from information gathered while generating the boot code, 
wherein the certificate describes operation of the boot code. 
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